CVE-2026-42913
highCVSS v3 Base Score
7.5
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.5%
Exploitation probability in 30 days
Top 62% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
Required
Confidentiality
High
Integrity
High
Availability
High
Vulnerability Report
Generated by CyberWatcher
Description
Concurrent execution using shared resource with improper synchronization ('race condition') in Remote Desktop Client allows an unauthorized attacker to execute code over a network.
CWE
CWE-362Affected Products
microsoft remote desktop clientmicrosoft windows 11 23h2microsoft windows 11 24h2microsoft windows 11 25h2microsoft windows 11 26h1microsoft windows server 2022microsoft windows server 2025